TPG Abuse warning email from ACMA's AISI??..

Discussion in 'Networking, Telephony & Internet' started by KANNIS, Jul 16, 2010.

  1. KANNIS

    KANNIS Member

    Joined:
    Dec 19, 2003
    Messages:
    9,223
    Location:
    Sydney
    I got this email just then..I have no idea what its about or why I got it.. Can someone shed some light on this for me?

    Who the F is ACMA's Australian Internet Security Initiative (AISI)
    Has the filtering and intrusion to our privacy already started? How the hell does this AISI know we are infected? They must be monitoring us already.

    I got an infection last week but I dont understand the threats to cancel my account. I understand the letter is to help me out but I dont like it that a government body knows this information about my PC..
     
    Last edited: Jul 16, 2010
  2. Copie

    Copie Member

    Joined:
    Jul 24, 2009
    Messages:
    12,678
    Location:
    Newcastle
    Sounds like either a hoax, or its TPG filtering your net.

    The actual filter isnt going atm, or i wouldn't be able to access 4chan.
     
  3. Ashpool

    Ashpool Member

    Joined:
    Feb 24, 2003
    Messages:
    3,352
    Location:
    Ye Olde Melbourne Town
    Its not that they are monitoring your PC. But a provider somewhere has a traffic log of suspicious traffic coming from your PC.

    As an analogy if you get if you go around ringing people a lot with a recorded message selling stuff, expect your telecoms company to come knocking.

    Essentially your computer was infected and started sending malicious traffic out. This was detected and reported and info sent back to your ISP who then passed it onto you.

    http://www.acma.gov.au/WEB/STANDARD..PC/pc=PC_310317
     
  4. mr_wrxman

    mr_wrxman Member

    Joined:
    May 1, 2005
    Messages:
    2,372
    Location:
    Sydney 2141
    Yep, you're the one who's propogating it, basically one of your computers is broadcasting malicious crap and someone somwhere has picked up on it and is letting you know.
     
  5. Dutch Wink

    Dutch Wink Member

    Joined:
    Aug 21, 2001
    Messages:
    2,096
    Location:
    Perth
    http://www.acma.gov.au/WEB/STANDARD/pc=PC_310317


    Basically they have somehow noticed that your machine/IP is connecting to other IP's (one of which was theirs) trying to do something malicious to it.

    Do as it says, get antivirus, get updated, and get your machine fixed. Don't ignore it. Get external help (or ask here) if you don't feel comfortable doing so yourself.

    First a simple trojan, next, your bank account details...
     
  6. leighr

    leighr Member

    Joined:
    Feb 28, 2002
    Messages:
    545
    Location:
    Richmond, Melbourne
    http://lmgtfy.com/?q=Australian+Internet+Security+Initiative&l=1

    As far as how do they know about it - your machine is/was spamming the world. You can't really complain your privacy is being breached when you're the one broadcasting.
     
    Last edited: Jul 16, 2010
  7. crag_v

    crag_v Member

    Joined:
    Feb 27, 2002
    Messages:
    1,871
    Location:
    3091
    I experienced something like this after connecting a friend's computer to my network overnight a few years back. I was going to do a bit of work for them and inadverdantly left it running all night. Turns out it had some malware or a virus of some kind running on it as I had a similar email from iiNet in my inbox the next morning.

    I checked my router's logs and what do you know, that little computer had been spam-botting while I slept! A good reminder to not connect unfamiliar computers to your network until you've checked them.

    Might be something similar in your situation... or your own PC, if you don't run an antivirus program, as others have said!
     
  8. Airquarious

    Airquarious Member

    Joined:
    Aug 31, 2001
    Messages:
    1,802
    Location:
    Galaxy near you!
    Time to FORMAT...:thumbup:
     
  9. FiShy

    FiShy Member

    Joined:
    Aug 15, 2001
    Messages:
    9,682
    You have a Trojan, clean you stuff.


    And to all the people who say this is a filter are just idiots.
     
  10. Brad2k4

    Brad2k4 Member

    Joined:
    Aug 6, 2004
    Messages:
    152
    Location:
    Rockhampton
    Theres scams in your portal! :D
     
  11. OP
    OP
    KANNIS

    KANNIS Member

    Joined:
    Dec 19, 2003
    Messages:
    9,223
    Location:
    Sydney
    Thanks for the good replies gents. Much appreciated, looks like it was nothing....:thumbup:

    I think a format is in the pipeworks this weekend. The PC has been slowing down a lot and I do need a new HDD....:thumbup:
     
  12. bennyg

    bennyg Member

    Joined:
    Dec 16, 2005
    Messages:
    3,152
    Location:
    Melbourne, Oztraya
    A virus isn't "nothing"...

    It *could* be and probably is, but then every single file on your computer could be uploaded on some Russian site by now, or someone *could* have already run up a grand on your credit card. That's why you don't dick around.

    TPG wouldn't ban you immediately, I would think they'd just put a block on your connection until you've sorted it out.

    This kind of thing happens, our website was shut down for about a day because our hoster had a spambot on one of its servers, but that wasn't ACMA, it was some US-based "spam police" that had cut off our hoster from the rest of the internet.
     
  13. Lardman

    Lardman Member

    Joined:
    Apr 25, 2007
    Messages:
    4,277
    Location:
    ACT 2607
    Correct.

    Just be wary, Many ISP's have a policy of three strikes you're offline with these things, so please do what they tell you. It's classed as abusing a service with most of them, so just do the virus scan, clear it all off and let them know you've done so.
     
  14. OP
    OP
    KANNIS

    KANNIS Member

    Joined:
    Dec 19, 2003
    Messages:
    9,223
    Location:
    Sydney
    Lucky I never use credit cards on this PC ;)

    I cleaned the system out and it did find some interesting stuff...I love removing this shit and watching my system get back to normal heheheh...
     
  15. FiShy

    FiShy Member

    Joined:
    Aug 15, 2001
    Messages:
    9,682
    Agreed, for every virii you find another 10 are missed.


    zero writing is the only way to fly!
     
  16. Doc-of-FC

    Doc-of-FC Member

    Joined:
    Aug 30, 2001
    Messages:
    2,898
    Location:
    Canberra
    i prefer /dev/urandom
     
  17. FiShy

    FiShy Member

    Joined:
    Aug 15, 2001
    Messages:
    9,682
    Just go all out.
     
  18. Shado

    Shado Member

    Joined:
    Jun 27, 2001
    Messages:
    3,561
    Location:
    Brisbane, QLD, Australia
    The letter isn't to help you out, it's to help out the poor bastard who is probably getting a denial of service attack on his PC / site because your PC and ten thousand+ others are all infected and being used by someone else to flood the target with traffic, or make hack attempts etc. Realistically the only way to stop an attack like this is to block the infected machines at an ISP level.

    If your machine is compromised in this way the only certain way of fixing it is a complete wipe.

    Completely unrelated feature to a filter.

    A filter is putting something in place in between your PC and the target site by a third party, in this case, it's the target site itself reporting that the traffic from your PC is undesirable.
     
  19. ewok85

    ewok85 Member

    Joined:
    Jul 4, 2002
    Messages:
    8,074
    Location:
    Tokyo, Japan
    There's no government body with any information about you. A complaint (probably automated) would have been sent to your ISP with no details except an IP address. Your ISP would determine who the IP address belonged to during the time the complaint was made, and sends a generic email to that person - you.

    Your personal details have not been given to anyone, nor has anyone been looking at your PC.

    Just install MBAM and stop surfing dodgy porn sites :lol:
     
  20. mike-s

    mike-s Member

    Joined:
    Dec 15, 2003
    Messages:
    1,865
    Location:
    Sydney, Australia
    That's why i have got .70 in my lan set up to be blocked on everything outbound except for ftp and http requests, so that when i (as i always do) get a friends pc with crap on it, i just assign them that ip address and then go about cleaning it up. I also have an implicit block setup on all the software firewalls on my pc's to block all requests from that same ip for the very same reason of avoiding propogation.
     

Share This Page